Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/25 12:0 a.m.58 views

GLSA-202311-11 : QtWebEngine: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202311-11 QtWebEngine: Multiple Vulnerabilities - Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-2294 -...

8.8CVSS8.3AI score0.70461EPSS
Exploits8References124
ALT Linux
ALT Linux
added 2023/04/04 12:0 a.m.45 views

Security fix for the ALT Linux 10 package yandex-browser-stable version 23.1.2.1033-alt1

23.1.2.1033-alt1 built April 4, 2023 Yandex Browser Team in task 317282 March 20, 2023 Yandex Browser Team - browser updated to 23.1.2 + High CVE-2022-4436: Use after free in Blink Media. + High CVE-2022-4437: Use after free in Mojo IPC. + High CVE-2022-4438: Use after free in Blink Frames. + Hig...

8.5AI score0.31864EPSS
Exploits8
Mageia
Mageia
added 2022/12/06 11:32 p.m.69 views

Updated chromium-browser-stable packages fix security vulnerability

The chromium-browser-stable package has been updated to the new 108 branch with the 108.0.5359.94 release, fixing many bugs and 29 vulnerabilities, together with 107.0.5304.121 and 108.0.5359.71. Some of the security fixes are - CVE-2022-4174: Type Confusion in V8. Reported by Zhenghang Xiao...

9.6CVSS9.1AI score0.31864EPSS
Exploits4References2
Microsoft CVE
Microsoft CVE
added 2022/12/05 8:0 a.m.52 views

Chromium: CVE-2022-4186 Insufficient validation of untrusted input in Downloads

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6AI score0.00437EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/11/30 12:15 a.m.3 views

CVE-2022-4186

Insufficient validation of untrusted input in Downloads in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass Downloads restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.2AI score0.00437EPSS
Exploits0References5
CVE
CVE
added 2022/11/29 12:0 a.m.189 views

CVE-2022-4186

CVE-2022-4186 affects Google Chrome/Chromium, describing insufficient validation of untrusted input in Downloads. Prior to 108.0.5359.71, an attacker who convinces a user to install a malicious extension could bypass Download restrictions via a crafted HTML page. The CVE is labeled Medium severit...

4.3CVSS5AI score0.00437EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2022/11/29 12:0 a.m.34 views

CVE-2022-4186

Insufficient validation of untrusted input in Downloads in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass Downloads restrictions via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS6.2AI score0.00437EPSS
Exploits0
Rows per page
Query Builder